Microsoft releases security updates to address a Defender-related zero-day vulnerability called “RoguePlanet,” first reported publicly in connection with June 2026 Patch Tuesday. Multiple outlets report that the issue is tracked as CVE-2026-50656 and affects the Microsoft Malware Protection Engine component, mpengine.dll, which is used for scanning, detection, and cleaning in Microsoft security products.
The flaw is described as a privilege escalation vulnerability that can allow an attacker to gain SYSTEM-level permissions, enabling broader control of the affected system. SecurityWeek and other reports state that Microsoft mitigates the problem through a Microsoft Malware Protection Engine update associated with the Defender fix. Bleeping Computer adds that the patch is issued after public disclosure following Patch Tuesday.
The reporting is consistent that the patch is intended to stop exploitation of RoguePlanet by closing the privilege escalation path in the malware protection engine. Organizations running Microsoft Defender are advised to apply the relevant updates to ensure systems are protected against potential exploitation of the vulnerability.